| |
| |||||||
Alles rund um Windows: Pc mit Windows 10 startet nach 5-25 min neuWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
 |
03.09.2015, 10:42
| #1 |
 |  Problem: Pc mit Windows 10 startet nach 5-25 min neu Hiho Gestern Abend hatte ich beim Spielen (MGS5) einen Crash/Oder Neustart kann ich nicht sagen, da ich keinen Blue Screen hatte. Da das Bild eingefroren war und sich der Ton aufgehängt hat, habe ich einen kalt Neustart gemacht, 5-7 sek auf den ein/aus Schalter gedrückt. Danach ist der Pc hochgefahren ohne Probleme. Seit diesem Zeitpunkt, startet mein Pc sich nach unterschiedlicher Zeit meist +-20-30 neu. Dabei friert mein Bild ein und die Musik die läuft hängt sich auf. Wie gesagt gibt es dabei keine Fehler Meldung und keinen Blue Screen, er startet sich einfach neu. Ich habe was von einer Neustart schleife bei Windows 10 gehört ( ich habe Windows 10). Da ich bereits hier im Forum rumgestöbert habe, Poste ich einfach mal die Daten von der Crystal Crashed und Who Crashed. Code:
ATTFilter Crash dump directory: C:\WINDOWS\Minidump
Crash dumps are enabled on your computer.
On Thu 03.09.2015 09:21:44 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6296-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F599A0C97B1, 0xB3B72BDFEC8CA79C, 0xFFFFE001095185F0, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Thu 03.09.2015 09:21:44 GMT your computer crashed
crash dump file: C:\WINDOWS\memory.dmp
This was probably caused by the following module: ntkrnlmp.exe (nt!KeBugCheckEx+0x0)
Bugcheck code: 0x109 (0xA3A01F599A0C97B1, 0xB3B72BDFEC8CA79C, 0xFFFFE001095185F0, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Thu 03.09.2015 08:43:54 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6281-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A0CCB25A6, 0xB3B72BE05F4B3591, 0xFFFFE0017C1D60D0, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Wed 02.09.2015 23:38:19 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-7656-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A1DBD05B1, 0xB3B72BE0703DC2A4, 0xFFFFE0017FF17860, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Wed 02.09.2015 23:12:00 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6640-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A2788B5AF, 0xB3B72BE07A08C59A, 0xFFFFE0018E5D4930, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Wed 02.09.2015 23:05:02 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6109-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A895B14FB, 0xB3B72BE0DBDB24F6, 0xFFFFE001F8920780, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Wed 02.09.2015 23:02:30 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6546-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A00F58B5209546, 0xB3B71BDF07A0A531, 0xFFFFE000253F34E0, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Thu 20.08.2015 20:51:03 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\082015-5203-01.dmp
This was probably caused by the following module: win32kfull.sys (win32kfull+0x97797)
Bugcheck code: 0x3B (0xC0000005, 0xFFFFF9618A297797, 0xFFFFD00021C92200, 0x0)
Error: SYSTEM_SERVICE_EXCEPTION
file path: C:\WINDOWS\system32\win32kfull.sys
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: Full/Desktop Win32k Kernel Driver
Bug check description: This indicates that an exception happened while executing a routine that transitions from non-privileged code to privileged code.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in a standard Microsoft module. Your system configuration may be incorrect. Possibly this problem is caused by another driver on your system that cannot be identified at this time.
Code:
ATTFilter 8 crash dumps have been found and analyzed. No offending third party drivers have been found. Connsider using WhoCrashed Professional which offers more detailed analysis using symbol resolution. Also configuring your system to produce a full memory dump may help you.
Read the topic general suggestions for troubleshooting system crashes for more information.
Note that it's not always possible to state with certainty whether a reported driver is responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.
Code:
ATTFilter ----------------------------------------------------------------------------
CrystalDiskInfo 6.5.2 (C) 2008-2015 hiyohiyo
Crystal Dew World : hxxp://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 10 [10.0 Build 10240] (x64)
Date : 2015/09/03 11:40:01
-- Controller Map ----------------------------------------------------------
+ Intel(R) 9 Series Chipset Family SATA AHCI Controller [ATA]
- SAMSUNG MZ7TE256HMHP-000H1
- ST1000DM003-1ER162
- hp CDDVDW SH-216DB
- Microsoft-Controller für Speicherplätze [SCSI]
-- Disk List ---------------------------------------------------------------
(1) SAMSUNG MZ7TE256HMHP-000H1 : 256,0 GB [0/0/0, pd1] - sg
(2) ST1000DM003-1ER162 : 1000,2 GB [1/0/0, pd1] - st
----------------------------------------------------------------------------
(1) SAMSUNG MZ7TE256HMHP-000H1
----------------------------------------------------------------------------
Model : SAMSUNG MZ7TE256HMHP-000H1
Firmware : EXT09H0Q
Serial Number : S1BCNSAG204230
Disk Size : 256,0 GB (8,4/137,4/256,0/256,0)
Buffer Size : Unbekannt
Queue Depth : 32
# of Sectors : 500118192
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ATA8-ACS version 4c
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 1869 Std.
Power On Count : 153 mal
Temperature : 26 C (78 F)
Health Status : Gut
Features : S.M.A.R.T., 48bit LBA, NCQ, TRIM, DevSleep
APM Level : ----
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 __2 000000000000 Herstellerspezifisch
05 100 100 _10 000000000000 Wiederzugewiesene Sektoren
09 _97 _97 __1 00000000074D Betriebsstunden
0B _99 _99 __1 000000000009 Herstellerspezifisch
0C _99 _99 __1 000000000099 Geräte-Einschaltvorgänge
AA _99 _99 _10 00000000089E Herstellerspezifisch
AB 100 100 _10 000000000000 Herstellerspezifisch
AC 100 100 _10 000000000000 Herstellerspezifisch
AD _99 _99 __5 0000071F0001 Herstellerspezifisch
AE _99 _99 __1 000000000009 Herstellerspezifisch
B7 100 100 __1 000000000000 Laufzeit schlechter Blöcke (gesamt)
B8 100 100 _97 000000000000 Herstellerspezifisch
BB 100 100 __0 000000000000 Nicht korrigierbare Fehler
BC 100 100 __0 000000000000 Herstellerspezifisch
BE _74 _70 __1 00001E15001A Luftstromtemperatur
C4 100 100 __1 000000000000 Herstellerspezifisch
C6 100 100 __1 000000000000 Nicht korrigierbare Offline-Fehler
C7 100 100 __1 000000000000 CRC-Fehler
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5331 4243 4E53 4147 3230 3432 3330 2020 2020 2020
020: 0000 0000 0000 4558 5430 3948 3051 5341 4D53 554E
030: 4720 4D5A 3754 4532 3536 484D 4850 2D30 3030 4831
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0D00
070: 0000 0000 0000 0000 0000 001F 850E 00C6 016C 004C
080: 03FC 0039 706B 7C01 4123 7069 BC01 4123 407F 0001
090: 0004 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 32B0 1DCF 0000 0000 0000 0008 4000 0000 5002 5388
110: 4458 4D30 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 107F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0800 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 B3A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 2F 00 64 64 00 00 00 00 00 00 00 05 33
010: 00 64 64 00 00 00 00 00 00 00 09 32 00 61 61 4D
020: 07 00 00 00 00 00 0B 22 00 63 63 09 00 00 00 00
030: 00 00 0C 32 00 63 63 99 00 00 00 00 00 00 AA 13
040: 00 63 63 9E 08 00 00 00 00 00 AB 22 00 64 64 00
050: 00 00 00 00 00 00 AC 32 00 64 64 00 00 00 00 00
060: 00 00 AD 13 00 63 63 01 00 1F 07 00 00 00 AE 32
070: 00 63 63 09 00 00 00 00 00 00 B7 32 00 64 64 00
080: 00 00 00 00 00 00 B8 33 00 64 64 00 00 00 00 00
090: 00 00 BB 32 00 64 64 00 00 00 00 00 00 00 BC 32
0A0: 00 64 64 00 00 00 00 00 00 00 BE 22 00 4A 46 1A
0B0: 00 15 1E 00 00 00 C4 32 00 64 64 00 00 00 00 00
0C0: 00 00 C6 30 00 64 64 00 00 00 00 00 00 00 C7 22
0D0: 00 64 64 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 02 00 90 06 00 53
170: 03 00 01 00 02 1C 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 97
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 20 00 01 02 00 00 00 00 00 00 00 00 00 00 05 0A
010: 00 00 00 00 00 00 00 00 00 00 09 01 00 00 00 00
020: 00 00 00 00 00 00 0B 01 00 00 00 00 00 00 00 00
030: 00 00 0C 01 00 00 00 00 00 00 00 00 00 00 AA 0A
040: 00 00 00 00 00 00 00 00 00 00 AB 0A 00 00 00 00
050: 00 00 00 00 00 00 AC 0A 00 00 00 00 00 00 00 00
060: 00 00 AD 05 00 00 00 00 00 00 00 00 00 00 AE 01
070: 00 00 00 00 00 00 00 00 00 00 B7 01 00 00 00 00
080: 00 00 00 00 00 00 B8 61 00 00 00 00 00 00 00 00
090: 00 00 BB 00 00 00 00 00 00 00 00 00 00 00 BC 00
0A0: 00 00 00 00 00 00 00 00 00 00 BE 01 00 00 00 00
0B0: 00 00 00 00 00 00 C4 01 00 00 00 00 00 00 00 00
0C0: 00 00 C6 01 00 00 00 00 00 00 00 00 00 00 C7 01
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 D0
----------------------------------------------------------------------------
(2) ST1000DM003-1ER162
----------------------------------------------------------------------------
Model : ST1000DM003-1ER162
Firmware : HP51
Serial Number : S4Y3ANAN
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Unbekannt
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 1856 Std.
Power On Count : 158 mal
Temperature : 28 C (82 F)
Health Status : Gut
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 113 _99 __6 000003543540 Lesefehlerrate
03 _98 _97 __0 000000000000 Mittlere Anlaufzeit
04 100 100 _20 0000000000AC Start/Stopp-Zyklen der Spindel
05 100 100 _10 000000000000 Wiederzugewiesene Sektoren
07 _65 _60 _30 000000302104 Suchfehler
09 _98 _98 __0 000000000740 Betriebsstunden
0A 100 100 _97 000000000000 Misslungene Spindelanläufe
0C 100 100 _20 00000000009E Geräte-Einschaltvorgänge
B4 100 100 __0 0000108A8728 Herstellerspezifisch
B7 100 100 __0 000000000000 Herstellerspezifisch
B8 100 100 _97 000000000000 Ende-zu-Ende-Fehler
BB 100 100 __0 000000000000 Gemeldete unkorrigierbare Fehler
BC 100 100 __0 000000000000 Befehlszeitüberschreitung
BD 100 100 __0 000000000000 Übergeordnete Schreibvorgänge
BE _72 _67 _45 00001C16001C Luftstromtemperatur
BF 100 100 __0 000000000000 Beschleunigungssensor-Fehlerrate
C0 100 100 __0 000000000002 Ausschaltungsabbrüche
C1 _89 _89 __0 000000005A3E Laden/Entladen-Zyklen
C2 _28 _40 __0 000F0000001C Temperatur
C4 100 100 _36 000000000000 Wiederzuweisungsereignisse
C5 100 100 __0 000000000000 Aktuell ausstehende Sektoren
C6 100 100 __0 000000000000 Nicht korrigierbare Sektoren
C7 200 200 __0 000000000000 UltraDMA-CRC-Fehler
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5334 5933 414E 414E 2020 2020 2020 2020 2020 2020
020: 0000 0000 0004 4850 3531 2020 2020 5354 3130 3030
030: 444D 3030 332D 3145 5231 3632 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0006 00CC 004C
080: 03F8 001F 306B 7C69 4123 3069 BC49 4123 203F 0036
090: 0036 8080 FFFE 0000 D0D0 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5000 C500
110: 80A9 AB54 0000 0000 0000 0000 0000 0000 0000 405C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 0078 0000 0008 0000 0000 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 8000 0000 0000 5800 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103F 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 107E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0080 0000 0000 0000 0000
240: 0000 0000 0000 0007 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 D6A5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 2F 00 71 63 40 35 54 03 00 00 00 03 23
010: 00 62 61 00 00 00 00 00 00 00 04 32 00 64 64 AC
020: 00 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 2F 00 41 3C 04 21 30 00 00 00 00 09 32
040: 00 62 62 40 07 00 00 00 00 00 0A 33 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 64 64 9E 00 00 00 00
060: 00 00 B4 2A 00 64 64 28 87 8A 10 00 00 00 B7 32
070: 00 64 64 00 00 00 00 00 00 00 B8 33 00 64 64 00
080: 00 00 00 00 00 00 BB 32 00 64 64 00 00 00 00 00
090: 00 00 BC 32 00 64 64 00 00 00 00 00 00 00 BD 3A
0A0: 00 64 64 00 00 00 00 00 00 00 BE 22 00 48 43 1C
0B0: 00 16 1C 00 00 00 BF 32 00 64 64 00 00 00 00 00
0C0: 00 00 C0 32 00 64 64 02 00 00 00 00 00 00 C1 32
0D0: 00 59 59 3E 5A 00 00 00 00 00 C2 22 00 1C 28 1C
0E0: 00 00 00 0F 00 00 C4 32 00 64 64 00 00 00 00 00
0F0: 00 00 C5 32 00 64 64 00 00 00 00 00 00 00 C6 30
100: 00 64 64 00 00 00 00 00 00 00 C7 32 00 C8 C8 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 59 00 00 53
170: 03 00 01 00 02 70 00 00 00 00 00 00 00 00 00 00
180: 00 00 02 00 90 04 00 00 02 03 03 03 03 03 03 02
190: 03 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 6A 16 A8 F2 13 06 00 00
1B0: 00 00 00 00 01 00 41 06 8A 1A 53 63 00 00 00 00
1C0: BB 26 CB 2E 01 00 00 00 00 00 00 00 00 00 00 00
1D0: 01 00 00 00 00 00 00 00 A8 1C 00 00 01 00 00 00
1E0: 00 00 00 00 E8 65 01 00 00 00 00 00 00 00 00 03
1F0: 00 00 00 00 00 00 00 00 00 00 14 17 00 00 00 D9
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 20 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B4 00 00 00 00 00 00 00 00 00 00 00 B7 00
070: 00 00 00 00 00 00 00 00 00 00 B8 61 00 00 00 00
080: 00 00 00 00 00 00 BB 00 00 00 00 00 00 00 00 00
090: 00 00 BC 00 00 00 00 00 00 00 00 00 00 00 BD 00
0A0: 00 00 00 00 00 00 00 00 00 00 BE 2D 00 00 00 00
0B0: 00 00 00 00 00 00 BF 00 00 00 00 00 00 00 00 00
0C0: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C1 00
0D0: 00 00 00 00 00 00 00 00 00 00 C2 00 00 00 00 00
0E0: 00 00 00 00 00 00 C4 24 00 00 00 00 00 00 00 00
0F0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
100: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 17
Geändert von Ayren (03.09.2015 um 10:57 Uhr) |
|
03.09.2015, 11:31
| #2 |
| /// Malwareteam   | Pc mit Windows 10 startet nach 5-25 min neu Anleitung / Hilfe Arbeitsspeicherüberprüfung mit Memtest86+ Lade dir dazu folgendes Tool herunter: Memtest86+ - Advanced Memory Diagnostic Tool Ein dazugehöriges Tutorial: [HowTo] Wie testet man den RAM mit Memtest86+? Sobald rote Zeilen auf dem Schirm erscheinen, ist dein Arbeitsspeicher physikalisch beschädigt und es muss getauscht werden.
__________________ |
|
03.09.2015, 13:05
| #3 |
| | Pc mit Windows 10 startet nach 5-25 min neu Details Habe gerade meine Speicher mit Hilfe dieser Anleitung überprüft, da dies für mich am einfachsten war.
__________________www.win-10-forum.de/artikel-windows-10-tipps-tricks/297-windows-10-arbeitsspeicher-ram-fehler-ueberpruefen.html Dabei wurde kein Fehler gefunden und während des Prozesses, der mehr als 30 min dauerte, hat sich mein Pc auch nicht neugestartet. Könnte es auch das Netzteil sein ? Btw ich habe zum Testen alle RAM ausgetauscht und mit neuen Riegeln die ich zum Glück noch hatte ersetzt. Hat leider nichts gebracht nach 7 min genau das Gleiche. Hier noch das Update mit den neuen Crashes Code:
ATTFilter Crash dump directory: C:\WINDOWS\Minidump
Crash dumps are enabled on your computer.
On Thu 03.09.2015 12:47:04 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6468-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A029E850C, 0xB3B72BE0551E94F7, 0xFFFFE00169FE7790, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Thu 03.09.2015 12:47:04 GMT your computer crashed
crash dump file: C:\WINDOWS\memory.dmp
This was probably caused by the following module: ntkrnlmp.exe (nt!KeBugCheckEx+0x0)
Bugcheck code: 0x109 (0xA3A01F5A029E850C, 0xB3B72BE0551E94F7, 0xFFFFE00169FE7790, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Thu 03.09.2015 12:28:35 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-7187-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A61215AA3, 0xB3B72BE0B3A16A8E, 0xFFFFE001D0282780, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Thu 03.09.2015 11:10:23 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6484-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A00F58B3C705AE, 0xB3B71BDF064715A9, 0xFFFFE0008AB1C5F0, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Thu 03.09.2015 09:53:39 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6046-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F59734F5570, 0xB3B72BDFC5D01263, 0xFFFFE000E2BE7E10, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Thu 03.09.2015 09:21:44 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6296-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F599A0C97B1, 0xB3B72BDFEC8CA79C, 0xFFFFE001095185F0, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Thu 03.09.2015 08:43:54 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6281-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A0CCB25A6, 0xB3B72BE05F4B3591, 0xFFFFE0017C1D60D0, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Wed 02.09.2015 23:38:19 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-7656-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A1DBD05B1, 0xB3B72BE0703DC2A4, 0xFFFFE0017FF17860, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Wed 02.09.2015 23:12:00 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6640-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A2788B5AF, 0xB3B72BE07A08C59A, 0xFFFFE0018E5D4930, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Wed 02.09.2015 23:05:02 GMT your computer crashed
crash dump file: C:\WINDOWS\Minidump\090315-6109-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x14DD00)
Bugcheck code: 0x109 (0xA3A01F5A895B14FB, 0xB3B72BE0DBDB24F6, 0xFFFFE001F8920780, 0x1C)
Error: CRITICAL_STRUCTURE_CORRUPTION
file path: C:\WINDOWS\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that the kernel has detected critical kernel code or data corruption.
This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
Geändert von Ayren (03.09.2015 um 13:53 Uhr) |
|
03.09.2015, 16:02
| #4 | |
| /// Malwareteam | Lösung: Pc mit Windows 10 startet nach 5-25 min neu Hallo Ayren, ich weiß sehr wohl, dass Windows selbst ein solches Tool anbietet, habe aber bewusst Memtest86+ gepostet, da Windows manchmal nicht alle Fehler erkennt. Zitat:
Hast du irgendeine Veränderung am Recher vorgenommen, als die Probleme anfingen? Bitte mach mal das: Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Bitte poste dein Ergebnis zwischen Code-Tags Wenn ein Log zu lange ist, teile ihn bitte auf mehrere Antworten.  Code-Tags?Drücke einfach die # in Antwortfenster und füge den Log dazwischen ein 
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~  Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
03.09.2015, 16:17
| #5 |
| | Wie Pc mit Windows 10 startet nach 5-25 min neuCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:31-08-2015
durchgeführt von Benito (Administrator) auf AYREN (03-09-2015 17:08:54)
Gestartet von E:\Download
Geladene Profile: Benito (Verfügbare Profile: Benito)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Intel Corporation) C:\SYSTEM.SAV\util\ibtsiva.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Users\Benito\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\winword.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Valve Corporation) E:\Steam\Steam.exe
(Valve Corporation) E:\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) E:\Steam\bin\steamwebhelper.exe
(Valve Corporation) E:\Steam\bin\steamwebhelper.exe
(Konami Digital Entertainment) E:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
(Valve Corporation) E:\Steam\GameOverlayUI.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVBg_SOUNDEDGE] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [DropboxOEM] => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [462160 2014-09-02] ()
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [782008 2015-08-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [62464 2015-06-18] ()
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66936 2015-08-03] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-595547741-316607751-116945185-1001\...\Run: [Steam] => E:\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-595547741-316607751-116945185-1001\...\Run: [OneDrive] => C:\Users\Benito\AppData\Local\Microsoft\OneDrive\OneDrive.exe [404064 2015-08-20] (Microsoft Corporation)
HKU\S-1-5-21-595547741-316607751-116945185-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53736048 2015-08-07] (Skype Technologies S.A.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{028f2f1c-a3cc-4ff5-9d41-a125195f6a7c}: [DhcpNameServer] 81.92.99.6 81.92.99.8
Tcpip\..\Interfaces\{29bf01e6-fc48-489c-81ed-ad4130ca9c71}: [DhcpNameServer] 10.0.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp13.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp13.msn.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp13.msn.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp13.msn.com
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-595547741-316607751-116945185-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp13.msn.com
HKU\S-1-5-21-595547741-316607751-116945185-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp13.msn.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {CF5794C1-7AB4-41F3-A006-71A4402754BB} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {CF5794C1-7AB4-41F3-A006-71A4402754BB} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-595547741-316607751-116945185-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-595547741-316607751-116945185-1001 -> {CF5794C1-7AB4-41F3-A006-71A4402754BB} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-07-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-03] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-03] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-07-25] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-05-24] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Benito\AppData\Roaming\Mozilla\Firefox\Profiles\0rlciyea.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-03] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-03] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-06-19] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-06-19] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-08-13] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-08-13] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-05-23] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Extension: Adblock Plus - C:\Users\Benito\AppData\Roaming\Mozilla\Firefox\Profiles\ssy8d7ju.dev-edition-default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-20]
FF Extension: Avira Browser Safety - C:\Users\Benito\AppData\Roaming\Mozilla\Firefox\Profiles\0rlciyea.default\Extensions\abs@avira.com [2015-08-12]
FF Extension: Adblock Plus - C:\Users\Benito\AppData\Roaming\Mozilla\Firefox\Profiles\0rlciyea.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-20]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt
FF Extension: HP SimplePass - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt [2015-03-13]
StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [887128 2015-07-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [461672 2015-08-26] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1213072 2015-08-26] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [227592 2015-08-03] (Avira Operations GmbH & Co. KG)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2765496 2015-07-14] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 iBtSiva; C:\system.sav\util\ibtsiva.exe [121288 2014-05-10] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-08-13] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [94720 2014-09-27] (Softex Inc.) [Datei ist nicht signiert]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-06-24] (Realtek Semiconductor)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-10] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137288 2015-07-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-07-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-04-16] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-04-16] (Avira Operations GmbH & Co. KG)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [253680 2015-03-20] (Intel Corporation)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [192312 2015-06-23] (Intel Corporation)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3496216 2015-07-10] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
S3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39240 2014-09-19] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [868848 2015-08-26] () [Datei ist nicht signiert]
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-03 17:07 - 2015-09-03 17:08 - 00000000 ____D C:\FRST
2015-09-03 16:22 - 2015-09-03 16:22 - 00016148 _____ C:\WINDOWS\system32\AYREN_Benito_HistoryPrediction.bin
2015-09-03 14:47 - 2015-09-03 14:47 - 00374832 _____ C:\WINDOWS\Minidump\090315-6468-01.dmp
2015-09-03 14:29 - 2015-09-03 14:29 - 00372616 _____ C:\WINDOWS\Minidump\090315-7187-01.dmp
2015-09-03 14:21 - 2015-09-03 14:21 - 00001413 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-09-03 14:21 - 2015-08-25 16:18 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-09-03 14:20 - 2015-09-03 14:21 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-09-03 14:20 - 2015-08-25 20:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00785152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00631312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00601240 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00376440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00339576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-03 14:20 - 2015-08-25 20:38 - 00040280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2015-09-03 14:20 - 2015-08-11 06:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-03 13:11 - 2015-09-03 13:11 - 00350400 _____ C:\WINDOWS\Minidump\090315-6484-01.dmp
2015-09-03 11:54 - 2015-09-03 11:54 - 00350152 _____ C:\WINDOWS\Minidump\090315-6046-01.dmp
2015-09-03 11:22 - 2015-09-03 11:22 - 00352064 _____ C:\WINDOWS\Minidump\090315-6296-01.dmp
2015-09-03 11:15 - 2015-09-03 11:15 - 00001218 _____ C:\Users\Benito\Desktop\CrystalDiskInfo.lnk
2015-09-03 11:15 - 2015-09-03 11:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2015-09-03 11:15 - 2015-09-03 11:15 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2015-09-03 11:08 - 2015-09-03 14:51 - 00000000 ____D C:\Program Files\WhoCrashed
2015-09-03 11:08 - 2015-09-03 11:14 - 00000894 _____ C:\Users\Benito\Desktop\WhoCrashed.lnk
2015-09-03 11:08 - 2015-09-03 11:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2015-09-03 10:44 - 2015-09-03 10:44 - 00353432 _____ C:\WINDOWS\Minidump\090315-6281-01.dmp
2015-09-03 01:39 - 2015-09-03 01:39 - 00351648 _____ C:\WINDOWS\Minidump\090315-7656-01.dmp
2015-09-03 01:18 - 2015-09-03 01:18 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Sun
2015-09-03 01:18 - 2015-09-03 01:18 - 00000000 ____D C:\Users\Benito\.oracle_jre_usage
2015-09-03 01:14 - 2015-09-03 16:33 - 00007602 _____ C:\Users\Benito\AppData\Local\Resmon.ResmonCfg
2015-09-03 01:12 - 2015-09-03 01:12 - 00350848 _____ C:\WINDOWS\Minidump\090315-6640-01.dmp
2015-09-03 01:05 - 2015-09-03 01:05 - 00342032 _____ C:\WINDOWS\Minidump\090315-6109-01.dmp
2015-09-03 01:03 - 2015-09-03 01:03 - 00262144 _____ C:\WINDOWS\Minidump\090315-6546-01.dmp
2015-09-02 01:09 - 2015-09-02 23:51 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-29 18:02 - 2015-08-30 00:19 - 00000000 ____D C:\Users\Benito\Desktop\wewqdqw
2015-08-28 11:26 - 2015-08-28 11:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-26 02:26 - 2015-08-26 02:28 - 00868848 _____ C:\WINDOWS\system32\Drivers\sptd.sys
2015-08-26 02:16 - 2015-08-26 02:16 - 00000000 ____D C:\Users\Benito\AppData\Roaming\ImgBurn
2015-08-26 02:14 - 2015-08-26 02:14 - 00000000 ____D C:\Users\Benito\ImageBurn
2015-08-26 01:00 - 2015-08-26 01:05 - 00000000 ____D C:\Users\Benito\AppData\Roaming\uTorrent
2015-08-26 00:15 - 2015-08-26 00:15 - 00000000 ____D C:\Users\Benito\AppData\Roaming\fltk.org
2015-08-20 22:51 - 2015-08-20 22:51 - 00262144 _____ C:\WINDOWS\Minidump\082015-5203-01.dmp
2015-08-20 22:50 - 2015-09-03 14:47 - 634824435 _____ C:\WINDOWS\MEMORY.DMP
2015-08-20 22:50 - 2015-09-03 14:47 - 00000000 ____D C:\WINDOWS\Minidump
2015-08-18 22:49 - 2015-08-18 22:49 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Advanced Combat Tracker
2015-08-18 22:48 - 2015-08-18 22:48 - 00001219 _____ C:\Users\Public\Desktop\Advanced Combat Tracker.lnk
2015-08-18 22:48 - 2015-08-18 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Combat Tracker
2015-08-18 22:48 - 2015-08-18 22:48 - 00000000 ____D C:\Program Files (x86)\Advanced Combat Tracker
2015-08-15 17:42 - 2015-08-15 17:42 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Python-Eggs
2015-08-15 00:48 - 2015-08-15 00:48 - 01963397 _____ C:\Users\Benito\Downloads\Dungeon Crawler.7z
2015-08-15 00:28 - 2015-08-29 18:06 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Audacity
2015-08-15 00:28 - 2015-08-15 00:28 - 00001051 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2015-08-15 00:28 - 2015-08-15 00:28 - 00001039 _____ C:\Users\Public\Desktop\Audacity.lnk
2015-08-15 00:28 - 2015-08-15 00:28 - 00000000 ____D C:\Program Files (x86)\Audacity
2015-08-13 21:46 - 2015-08-13 21:46 - 00000000 ____D C:\Users\Benito\Desktop\Speedrun Timer
2015-08-12 15:59 - 2015-08-12 15:59 - 00000000 ____D C:\Users\Benito\Documents\Shiner
2015-08-12 15:59 - 2015-08-12 15:59 - 00000000 ____D C:\Users\Benito\Documents\Robot Entertainment
2015-08-12 15:58 - 2015-08-12 15:59 - 00000000 ____D C:\Users\Benito\AppData\Local\Robot Entertainment
2015-08-12 07:48 - 2015-08-08 09:30 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-12 07:48 - 2015-08-08 09:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-12 07:48 - 2015-08-08 09:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-08-12 07:48 - 2015-08-08 09:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-12 07:48 - 2015-08-08 08:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-08-12 07:48 - 2015-08-08 08:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-08-12 07:48 - 2015-08-08 08:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-12 07:48 - 2015-08-08 08:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-12 07:48 - 2015-08-08 08:22 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-12 07:48 - 2015-08-08 08:21 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-12 07:48 - 2015-08-08 08:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-08-12 07:48 - 2015-08-08 08:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-12 07:48 - 2015-08-06 05:18 - 00290768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-12 07:48 - 2015-08-06 05:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-12 07:48 - 2015-08-06 05:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-12 07:48 - 2015-08-06 04:36 - 21874176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-08-12 07:48 - 2015-08-06 04:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-12 07:48 - 2015-08-06 04:03 - 18805248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-08-12 07:48 - 2015-08-05 06:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-12 07:48 - 2015-08-05 06:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-12 07:48 - 2015-08-05 06:03 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-12 07:48 - 2015-08-05 06:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-12 07:48 - 2015-08-05 05:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-12 07:48 - 2015-08-05 05:47 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-08-12 07:48 - 2015-08-05 05:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-08-12 07:48 - 2015-08-05 05:43 - 01916416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-12 07:48 - 2015-08-05 05:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-12 07:48 - 2015-08-04 06:08 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-12 07:48 - 2015-08-04 06:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-12 07:48 - 2015-08-04 06:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-12 07:48 - 2015-08-04 06:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-12 07:48 - 2015-08-04 05:50 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-12 07:48 - 2015-08-04 05:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-12 07:48 - 2015-08-04 05:21 - 16709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-12 07:48 - 2015-08-04 05:10 - 13025792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-12 07:48 - 2015-08-04 04:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-12 07:48 - 2015-08-04 04:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-12 07:48 - 2015-08-03 04:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-12 07:48 - 2015-08-03 04:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-12 07:48 - 2015-08-03 04:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-12 07:48 - 2015-08-03 04:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-12 07:48 - 2015-08-03 04:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-12 07:48 - 2015-08-03 04:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-12 07:48 - 2015-08-03 04:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-12 07:48 - 2015-08-03 04:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-12 07:48 - 2015-08-03 04:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-12 07:48 - 2015-08-03 04:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-12 07:48 - 2015-08-03 04:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-12 07:48 - 2015-08-03 04:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-12 07:48 - 2015-08-03 03:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-12 07:48 - 2015-08-03 03:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-12 07:48 - 2015-08-03 03:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-12 07:48 - 2015-08-03 03:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-12 07:48 - 2015-08-03 03:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-12 07:48 - 2015-08-03 03:24 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-08-12 07:48 - 2015-08-03 03:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-12 07:48 - 2015-08-03 03:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-12 07:48 - 2015-08-03 03:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-12 07:48 - 2015-08-03 03:23 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-12 07:48 - 2015-08-03 03:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-12 07:48 - 2015-08-03 03:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-12 07:48 - 2015-08-03 03:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-08-12 07:48 - 2015-08-03 03:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-12 07:48 - 2015-08-03 03:22 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-12 07:48 - 2015-08-03 03:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-12 07:48 - 2015-08-03 03:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-12 07:48 - 2015-08-03 03:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-12 07:48 - 2015-08-03 03:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-08-12 07:48 - 2015-08-03 03:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-12 07:48 - 2015-08-03 03:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-12 07:48 - 2015-08-03 03:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-12 07:48 - 2015-08-03 03:15 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-12 07:48 - 2015-08-03 03:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-12 07:48 - 2015-08-03 03:15 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-12 07:48 - 2015-08-03 03:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-12 07:48 - 2015-08-03 03:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-12 07:48 - 2015-08-03 03:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-12 07:48 - 2015-08-03 03:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-12 07:48 - 2015-08-03 03:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-12 07:48 - 2015-08-03 03:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-12 07:48 - 2015-08-03 03:12 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-08-12 07:48 - 2015-08-03 03:12 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-12 07:48 - 2015-08-03 03:12 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-12 07:48 - 2015-08-03 03:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-12 07:48 - 2015-08-03 03:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-12 07:48 - 2015-08-03 03:11 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-12 07:48 - 2015-08-03 03:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-12 07:48 - 2015-08-03 03:11 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-12 07:48 - 2015-08-03 03:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-12 07:48 - 2015-08-03 03:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-12 07:48 - 2015-08-03 03:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-12 07:48 - 2015-08-03 03:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-12 07:48 - 2015-08-03 03:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-12 07:48 - 2015-08-03 03:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-08-12 07:48 - 2015-08-03 03:00 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-12 07:48 - 2015-08-03 02:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-11 09:06 - 2015-07-30 08:24 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-11 09:06 - 2015-07-30 08:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-11 09:06 - 2015-07-30 08:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-11 09:06 - 2015-07-30 08:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-11 09:06 - 2015-07-30 08:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-11 09:06 - 2015-07-30 08:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-11 09:06 - 2015-07-30 08:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-11 09:06 - 2015-07-30 08:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-11 09:06 - 2015-07-30 08:09 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-11 09:06 - 2015-07-30 08:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-11 09:06 - 2015-07-30 08:05 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-11 09:06 - 2015-07-30 08:05 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-11 09:06 - 2015-07-30 08:04 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-11 09:06 - 2015-07-30 08:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-11 09:06 - 2015-07-30 07:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-11 09:06 - 2015-07-30 06:42 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-11 09:06 - 2015-07-30 06:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-11 09:06 - 2015-07-30 06:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-11 09:06 - 2015-07-30 06:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-11 09:06 - 2015-07-30 06:25 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-11 09:06 - 2015-07-30 06:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-11 09:06 - 2015-07-30 06:24 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-11 09:06 - 2015-07-30 06:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-11 09:06 - 2015-07-30 06:24 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-11 09:06 - 2015-07-30 06:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-11 09:06 - 2015-07-30 06:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-11 09:06 - 2015-07-30 06:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-11 09:06 - 2015-07-30 06:21 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-11 09:06 - 2015-07-30 06:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-11 09:06 - 2015-07-30 06:12 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-11 09:06 - 2015-07-30 06:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-11 09:06 - 2015-07-30 06:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-11 09:06 - 2015-07-30 06:08 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-11 09:06 - 2015-07-30 06:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-11 09:06 - 2015-07-30 05:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-11 09:06 - 2015-07-30 05:52 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-11 09:06 - 2015-07-30 05:52 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-11 09:06 - 2015-07-30 05:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-11 09:06 - 2015-07-30 05:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-11 09:06 - 2015-07-30 05:49 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-11 09:06 - 2015-07-30 05:49 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-11 09:06 - 2015-07-30 05:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-11 09:06 - 2015-07-30 05:46 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-11 09:06 - 2015-07-30 05:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-11 09:06 - 2015-07-30 05:46 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-11 09:06 - 2015-07-30 05:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-11 09:06 - 2015-07-30 05:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-11 09:06 - 2015-07-30 05:44 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-11 09:06 - 2015-07-30 05:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-11 09:06 - 2015-07-30 05:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-11 09:06 - 2015-07-30 05:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-11 09:06 - 2015-07-30 05:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-11 09:06 - 2015-07-30 05:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-11 09:06 - 2015-07-30 05:42 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-11 09:06 - 2015-07-30 05:41 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-11 09:06 - 2015-07-30 05:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-11 09:06 - 2015-07-30 05:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-11 09:06 - 2015-07-30 05:38 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-11 09:06 - 2015-07-30 05:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-11 09:06 - 2015-07-30 05:34 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-11 09:06 - 2015-07-30 05:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-11 09:06 - 2015-07-30 05:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-11 09:06 - 2015-07-30 05:10 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-11 09:06 - 2015-07-30 05:10 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-11 09:06 - 2015-07-30 05:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-11 09:06 - 2015-07-30 05:06 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-11 09:06 - 2015-07-30 05:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-11 09:06 - 2015-07-30 05:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-11 09:06 - 2015-07-30 05:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-11 09:06 - 2015-07-30 05:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-11 09:06 - 2015-07-30 05:04 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-11 09:06 - 2015-07-30 04:59 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-11 09:06 - 2015-07-30 04:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-10 11:42 - 2015-08-10 11:42 - 00000000 ____D C:\Users\Benito\AppData\Roaming\WildTangent
2015-08-10 11:23 - 2015-08-10 11:23 - 00000000 ____D C:\Users\Benito\AppData\Local\NetworkTiles
2015-08-10 09:11 - 2015-08-10 08:21 - 00000000 ___DC C:\WINDOWS\Panther
2015-08-10 09:09 - 2015-08-10 09:09 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-10 09:09 - 2015-08-10 09:09 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-10 09:09 - 2015-08-10 09:09 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-10 09:09 - 2015-08-10 09:09 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-10 09:09 - 2015-08-10 09:09 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-10 09:09 - 2015-08-10 09:09 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-10 09:09 - 2015-08-10 09:09 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-10 09:09 - 2015-08-10 09:09 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-10 09:09 - 2015-08-10 09:09 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-10 09:09 - 2015-08-10 09:09 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-10 09:09 - 2015-08-10 09:09 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-10 09:09 - 2015-08-10 09:09 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-10 09:09 - 2015-08-10 09:09 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-10 09:09 - 2015-08-10 09:09 - 00000000 ____D C:\Windows.old
2015-08-10 09:07 - 2015-09-03 16:28 - 00889892 _____ C:\WINDOWS\system32\perfh00C.dat
2015-08-10 09:07 - 2015-09-03 16:28 - 00212528 _____ C:\WINDOWS\system32\perfc00C.dat
2015-08-10 09:07 - 2015-08-10 09:07 - 00350774 _____ C:\WINDOWS\system32\perfi00C.dat
2015-08-10 09:07 - 2015-08-10 09:07 - 00040528 _____ C:\WINDOWS\system32\perfd00C.dat
2015-08-10 09:07 - 2015-08-10 09:07 - 00000000 ____D C:\WINDOWS\SysWOW64\fr
2015-08-10 09:07 - 2015-08-10 09:07 - 00000000 ____D C:\WINDOWS\system32\fr
2015-08-10 09:07 - 2015-07-09 21:36 - 06238720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons000c.dll
2015-08-10 09:07 - 2015-07-09 21:36 - 02268160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000c.dll
2015-08-10 09:07 - 2015-07-09 21:26 - 02353152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000c.dll
2015-08-10 09:07 - 2015-07-09 21:25 - 06238720 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons000c.dll
2015-08-10 09:05 - 2015-08-10 09:05 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-10 09:04 - 2015-08-10 09:07 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-10 09:04 - 2015-08-10 09:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-10 09:04 - 2015-08-10 09:04 - 00000000 ____D C:\Program Files\MSBuild
2015-08-10 09:04 - 2015-08-10 09:04 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-10 09:04 - 2015-08-10 09:04 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-10 09:04 - 2015-08-10 09:04 - 00000000 ____D C:\inetpub
2015-08-10 09:04 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-10 09:04 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-10 09:04 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-10 09:04 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-10 09:04 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-10 09:04 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-08-10 08:23 - 2015-08-20 11:33 - 00002360 _____ C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-10 08:21 - 2015-08-10 08:23 - 00000000 ____D C:\Users\Benito\AppData\Local\Comms
2015-08-10 08:21 - 2015-08-10 08:21 - 00000020 ___SH C:\Users\Benito\ntuser.ini
2015-08-10 08:21 - 2015-08-10 08:21 - 00000000 ____D C:\Users\Benito\AppData\Local\TileDataLayer
2015-08-10 08:21 - 2015-08-10 08:21 - 00000000 ____D C:\Users\Benito\AppData\Local\Publishers
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-08-10 08:18 - 2015-08-10 08:18 - 00000000 __SHD C:\Recovery
2015-08-10 08:17 - 2015-08-10 08:17 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-10 08:15 - 2015-08-10 08:15 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-10 08:15 - 2015-08-10 08:15 - 00000000 ____D C:\Users\Default\Documents\hp.system.package.metadata
2015-08-10 08:15 - 2015-08-10 08:15 - 00000000 ____D C:\Users\Default User\Documents\hp.system.package.metadata
2015-08-10 08:14 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-10 08:13 - 2015-09-03 16:28 - 00006512 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-10 08:13 - 2015-09-03 14:54 - 00000000 ____D C:\Users\Benito
2015-08-10 08:13 - 2015-08-10 08:21 - 00000000 ___RD C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-10 08:13 - 2015-08-10 08:13 - 02864160 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2015-08-10 08:13 - 2015-08-10 08:13 - 00011587 _____ C:\WINDOWS\iis.log
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\Vorlagen
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\Startmenü
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\Netzwerkumgebung
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\Lokale Einstellungen
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\Eigene Dateien
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\Druckumgebung
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\Documents\Eigene Musik
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\Documents\Eigene Bilder
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\AppData\Local\Verlauf
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\AppData\Local\Anwendungsdaten
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 _SHDL C:\Users\Benito\Anwendungsdaten
2015-08-10 08:13 - 2015-08-10 08:13 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-08-10 08:13 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-10 08:13 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-10 08:13 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-10 08:13 - 2015-07-10 13:04 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-10 08:12 - 2015-09-03 16:21 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-10 08:12 - 2015-09-03 14:21 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-10 08:12 - 2015-08-25 17:57 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-10 08:12 - 2015-08-25 17:57 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-10 08:12 - 2015-08-25 17:57 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-10 08:12 - 2015-08-25 17:57 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-10 08:12 - 2015-08-25 17:57 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-10 08:12 - 2015-08-25 17:57 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-10 08:12 - 2015-08-25 15:02 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-08-10 08:12 - 2015-08-10 08:14 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-10 08:12 - 2015-08-10 08:14 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-08-10 08:12 - 2015-08-10 08:12 - 00007873 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2015-08-10 08:12 - 2015-08-10 08:12 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-10 08:12 - 2015-08-10 08:12 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2015-08-10 08:12 - 2015-08-10 08:12 - 00000000 ____D C:\Program Files\Realtek
2015-08-10 08:11 - 2015-09-03 11:22 - 00019130 _____ C:\WINDOWS\PFRO.log
2015-08-10 08:11 - 2015-08-10 08:12 - 00039225 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-10 08:00 - 2015-08-10 08:17 - 00006584 _____ C:\WINDOWS\comsetup.log
2015-08-06 16:46 - 2015-08-15 13:38 - 00000000 ____D C:\Users\Benito\AppData\Local\WSplitTimer
2015-08-06 12:42 - 2015-08-10 08:15 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\project64 1.6
2015-08-06 03:36 - 2015-08-06 03:36 - 00000000 ____D C:\Users\Benito\AppData\Local\Downloaded Installations
2015-08-06 03:17 - 2015-08-06 03:37 - 00000000 ____D C:\Users\Benito\Documents\WB Games
2015-08-06 01:28 - 2015-08-10 08:17 - 00003278 _____ C:\WINDOWS\System32\Tasks\CLVDLauncher
2015-08-06 01:26 - 2015-08-06 01:26 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes
2015-08-04 18:23 - 2015-08-04 18:23 - 00000912 _____ C:\Users\Benito\Desktop\Minecraft - Verknüpfung.lnk
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-09-03 17:04 - 2015-05-20 22:03 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Skype
2015-09-03 16:40 - 2015-06-29 15:13 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-03 16:38 - 2015-05-20 20:58 - 00004148 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{415D10B8-374C-4038-8248-7AB105864DD6}
2015-09-03 16:28 - 2015-07-10 18:34 - 01007178 _____ C:\WINDOWS\system32\perfh007.dat
2015-09-03 16:28 - 2015-07-10 18:34 - 00235190 _____ C:\WINDOWS\system32\perfc007.dat
2015-09-03 16:24 - 2015-05-20 11:54 - 00006469 _____ C:\WINDOWS\SysWOW64\Gms.log
2015-09-03 16:22 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-03 16:21 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-03 16:21 - 2015-07-10 11:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2015-09-03 16:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-03 16:11 - 2015-05-28 00:35 - 00000000 ____D C:\Users\Benito\AppData\Roaming\.minecraft
2015-09-03 14:21 - 2015-07-10 14:20 - 00022095 _____ C:\WINDOWS\setupact.log
2015-09-03 10:23 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-03 01:19 - 2015-05-28 00:50 - 00000000 ____D C:\Program Files\Java
2015-09-03 01:19 - 2015-05-28 00:39 - 00000000 ____D C:\ProgramData\Oracle
2015-09-03 01:18 - 2015-05-28 00:50 - 00110688 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-09-03 01:18 - 2015-05-28 00:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-02 23:51 - 2015-05-20 21:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-09-02 23:51 - 2015-05-20 21:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-09-02 23:51 - 2014-04-02 16:46 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-02 00:09 - 2015-05-20 21:46 - 00000000 ____D C:\Users\Benito\AppData\Roaming\TS3Client
2015-09-01 16:23 - 2015-08-03 01:01 - 00000000 ____D C:\Users\Benito\Desktop\Neuer Ordner
2015-08-31 00:47 - 2015-06-17 09:22 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-28 11:29 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-08-28 11:26 - 2015-05-20 22:03 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-28 11:26 - 2015-05-20 22:03 - 00000000 ____D C:\ProgramData\Skype
2015-08-27 02:37 - 2015-03-13 05:22 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-27 02:37 - 2015-03-13 05:22 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-27 02:36 - 2015-03-13 05:22 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-27 02:36 - 2015-03-13 05:22 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-25 20:38 - 2015-06-17 09:22 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-08-25 20:38 - 2015-06-17 09:22 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-08-25 20:38 - 2015-06-17 09:22 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-08-25 20:38 - 2015-06-17 09:22 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-25 20:38 - 2015-06-17 09:22 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-25 20:38 - 2015-06-17 09:22 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-25 20:38 - 2015-04-16 19:03 - 00204648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2015-08-25 20:38 - 2015-04-16 07:19 - 01567576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2015-08-25 20:38 - 2015-03-13 05:12 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-08-25 20:38 - 2015-03-13 05:12 - 00105080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-08-22 13:23 - 2015-05-23 17:44 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-08-20 22:50 - 2015-06-04 11:37 - 00000348 _____ C:\WINDOWS\Tasks\HPCeeScheduleForBenito.job
2015-08-20 21:41 - 2015-06-04 11:37 - 00003244 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForBenito
2015-08-20 21:40 - 2015-05-21 12:35 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2015-08-20 11:33 - 2015-05-23 17:46 - 00000000 ___RD C:\Users\Benito\OneDrive
2015-08-16 01:36 - 2015-07-10 14:20 - 00250112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-16 01:36 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-16 01:36 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-16 01:36 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-16 01:36 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-16 01:36 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-16 01:36 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-16 01:36 - 2015-03-13 05:28 - 00000000 ____D C:\Program Files (x86)\WildGames
2015-08-13 13:10 - 2015-07-09 01:27 - 00000000 ____D C:\Users\Benito\AppData\Local\Audible
2015-08-12 15:58 - 2015-05-20 21:42 - 00133230 _____ C:\WINDOWS\DirectX.log
2015-08-12 07:50 - 2015-05-22 05:39 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 07:49 - 2015-05-22 05:39 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-12 01:40 - 2015-06-29 15:13 - 00003870 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-08-11 06:52 - 2015-05-20 23:49 - 00072504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-08-11 06:52 - 2015-05-20 23:49 - 00050472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-08-11 04:20 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-10 11:47 - 2015-03-13 05:24 - 00000000 ____D C:\ProgramData\CyberLink
2015-08-10 11:47 - 2015-03-13 05:19 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-10 11:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore
2015-08-10 11:42 - 2015-03-13 05:28 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-10 11:42 - 2015-03-13 05:28 - 00000000 ____D C:\ProgramData\WildTangent
2015-08-10 11:42 - 2015-03-13 05:28 - 00000000 ____D C:\Program Files (x86)\WildTangent Games
2015-08-10 09:11 - 2015-07-10 13:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-10 09:09 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-10 09:09 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-10 09:09 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-10 09:09 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-10 09:08 - 2015-07-10 18:35 - 00000000 ____D C:\WINDOWS\OCR
2015-08-10 09:07 - 2015-07-10 18:46 - 00000000 ____D C:\Program Files\Windows Journal
2015-08-10 09:07 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2015-08-10 09:07 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-08-10 09:07 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2015-08-10 09:07 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2015-08-10 09:07 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\system32\winrm
2015-08-10 09:07 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-08-10 09:07 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\system32\slmgr
2015-08-10 09:07 - 2015-07-10 18:34 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\dsc
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\migwiz
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Com
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\IME
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-08-10 09:07 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-08-10 09:07 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\servicing
2015-08-10 09:04 - 2015-07-10 13:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2015-08-10 09:04 - 2015-07-10 13:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2015-08-10 09:04 - 2015-07-10 13:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2015-08-10 09:04 - 2015-07-10 13:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2015-08-10 09:04 - 2015-07-10 13:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2015-08-10 09:04 - 2015-07-10 13:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2015-08-10 09:04 - 2015-07-10 13:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-08-10 09:04 - 2015-07-10 13:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-08-10 09:04 - 2015-07-10 13:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-08-10 09:04 - 2015-07-10 13:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-08-10 09:04 - 2015-07-10 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-08-10 09:04 - 2015-07-10 13:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-08-10 09:04 - 2015-07-10 12:59 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-08-10 09:04 - 2015-07-10 12:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-08-10 09:04 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-08-10 09:04 - 2015-07-10 12:59 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-08-10 08:38 - 2015-05-20 11:53 - 00000000 ____D C:\Users\Benito\AppData\Local\Packages
2015-08-10 08:21 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-10 08:21 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-10 08:21 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-10 08:21 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-10 08:21 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-08-10 08:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-10 08:18 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-10 08:18 - 2015-07-10 11:05 - 00000000 __RHD C:\Users\Default
2015-08-10 08:18 - 2015-05-20 11:55 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2015-08-10 08:18 - 2015-05-20 11:55 - 00011433 _____ C:\WINDOWS\diagerr.xml
2015-08-10 08:17 - 2015-07-10 13:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-10 08:17 - 2015-05-20 20:59 - 00003704 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-595547741-316607751-116945185-1001
2015-08-10 08:17 - 2015-03-13 05:26 - 00003096 _____ C:\WINDOWS\System32\Tasks\Start SimplePass
2015-08-10 08:17 - 2015-03-13 05:26 - 00003022 _____ C:\WINDOWS\System32\Tasks\Start OPBHOBroker
2015-08-10 08:15 - 2015-07-10 13:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log
2015-08-10 08:15 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-08-10 08:15 - 2015-07-09 01:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudibleManager
2015-08-10 08:15 - 2015-06-24 04:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-08-10 08:15 - 2015-06-12 01:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2015-08-10 08:15 - 2015-05-31 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-08-10 08:15 - 2015-05-29 17:05 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2015-08-10 08:15 - 2015-05-23 17:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-08-10 08:15 - 2015-05-20 22:50 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-10 08:15 - 2015-05-20 22:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-10 08:15 - 2015-05-20 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-08-10 08:15 - 2015-03-13 05:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 25 GB
2015-08-10 08:15 - 2015-03-13 05:24 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2015-08-10 08:15 - 2015-03-13 05:23 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2015-08-10 08:15 - 2015-03-13 05:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-10 08:15 - 2015-03-13 05:19 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-08-10 08:15 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\uk-UA
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\th-TH
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-RS
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sl-SI
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\ro-RO
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\hr-HR
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\he-IL
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\bg-BG
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\ar-SA
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\uk-UA
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\th-TH
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sl-SI
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sk-SK
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\ro-RO
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\hr-HR
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\he-IL
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\et-EE
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\en-GB
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\bg-BG
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\ar-SA
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\InputMethod
2015-08-10 08:14 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-10 08:14 - 2015-06-25 23:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SQUARE ENIX
2015-08-10 08:14 - 2015-05-20 21:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Funcom
2015-08-10 08:14 - 2015-03-13 05:23 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-08-10 08:14 - 2015-03-13 05:21 - 00000000 ____D C:\Program Files\Intel
2015-08-10 08:14 - 2015-03-13 05:21 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-10 08:14 - 2015-03-13 05:19 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-08-10 08:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-08-10 08:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-08-10 08:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2015-08-10 08:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS
2015-08-10 08:13 - 2015-08-02 00:52 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-08-10 08:13 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-10 08:13 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-10 08:13 - 2015-06-24 04:33 - 00000000 ____D C:\Users\Benito\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-08-10 08:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-10 08:02 - 2015-05-20 11:53 - 01373838 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-08-10 08:00 - 2015-07-10 19:28 - 00000000 ___HD C:\$Windows.~BT
2015-08-08 17:38 - 2015-07-10 13:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-08 17:38 - 2015-07-10 13:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-06 02:04 - 2015-05-20 23:16 - 00000000 ____D C:\Users\Benito\Documents\Square Enix
2015-08-05 21:44 - 2015-05-20 21:46 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-05-28 01:09 - 2015-05-28 01:09 - 0001080 _____ () C:\Users\Benito\AppData\Roaming\.minecraft - Verknüpfung.lnk
2015-09-03 01:14 - 2015-09-03 16:33 - 0007602 _____ () C:\Users\Benito\AppData\Local\Resmon.ResmonCfg
Einige Dateien in TEMP:
====================
C:\Users\Benito\AppData\Local\Temp\avgnt.exe
C:\Users\Benito\AppData\Local\Temp\Foxit PhantomPDF Updater.exe
C:\Users\Benito\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Benito\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Benito\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Benito\AppData\Local\Temp\nvStInst.exe
C:\Users\Benito\AppData\Local\Temp\VideoConverter.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-08-10 08:11
==================== Ende von FRST.txt ============================
|
|
03.09.2015, 16:17
| #6 |
| | Wo Pc mit Windows 10 startet nach 5-25 min neu Lösung!Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:31-08-2015
durchgeführt von Benito (2015-09-03 17:09:18)
Gestartet von E:\Download
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-595547741-316607751-116945185-500 - Administrator - Disabled)
Benito (S-1-5-21-595547741-316607751-116945185-1001 - Administrator - Enabled) => C:\Users\Benito
DefaultAccount (S-1-5-21-595547741-316607751-116945185-503 - Limited - Disabled)
Gast (S-1-5-21-595547741-316607751-116945185-501 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Advanced Combat Tracker (remove only) (HKLM-x32\...\Advanced Combat Tracker) (Version: - )
Alcor Micro USB Card Reader Driver (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 37159600.1637756.4759644.48 - Audible, Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.12.420 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{b76c0d12-422c-44e3-9daa-9363451e24cd}) (Version: 1.1.44.15481 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.44.15481 - Avira Operations GmbH & Co. KG) Hidden
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version: - Relic Entertainment)
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.8.4420 - CyberLink Corp.)
CyberLink MediaEspresso 6.7 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.7.3.5419 - CyberLink Corp.)
CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5.4505 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.8.4316 - CyberLink Corp.)
CyberLink PowerBackup 2.6 (HKLM-x32\...\InstallShield_{ADD5DB49-72CF-11D8-9D75-000129760D75}) (Version: 2.6.1.0903 - CyberLink Corp.)
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware)
Defender's Quest: Valley of the Forgotten (HKLM-x32\...\Steam App 218410) (Version: - Level Up Labs, LLC)
Deus Ex: Human Revolution (HKLM-x32\...\Steam App 28050) (Version: - Eidos Montreal)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DOOM II: Hell on Earth (HKLM-x32\...\Steam App 2300) (Version: - id Software)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 0.9.0 - Dropbox, Inc.)
Dungeon Defenders II (HKLM-x32\...\Steam App 236110) (Version: - Trendy Entertainment)
Dungeon of the Endless (HKLM-x32\...\Steam App 249050) (Version: - AMPLITUDE Studios)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.5.3 (HKLM-x32\...\{B1A0F908-1448-11E4-8684-00163E98E7D0}) (Version: 5.5.3.4236 - Evernote Corp.)
Fallout 3 - Game of the Year Edition (HKLM-x32\...\Steam App 22370) (Version: - Bethesda Game Studios)
Fallout Tactics (HKLM-x32\...\Steam App 38420) (Version: - 14° East)
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version: - Obsidian Entertainment)
Final DOOM (HKLM-x32\...\Steam App 2290) (Version: - id Software)
FINAL FANTASY VII (HKLM-x32\...\Steam App 39140) (Version: - Square Enix)
FINAL FANTASY VIII (HKLM-x32\...\Steam App 39150) (Version: - SQUARE ENIX)
FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.)
FINAL FANTASY XIV: A Realm Reborn (HKLM-x32\...\Steam App 39210) (Version: - SQUARE ENIX)
Firefox Developer Edition 40.0a2 (x64 de) (HKLM\...\Firefox Developer Edition 40.0a2 (x64 de)) (Version: 40.0a2 - Mozilla)
Foxit PhantomPDF (HKLM-x32\...\{89BF1D4D-1D62-451E-9496-B971BDE82720}) (Version: 6.0.33.715 - Foxit Corporation)
Free YouTube Download version 3.2.59.525 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.59.525 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.59.525 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.59.525 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Documentation (HKLM-x32\...\{198B2800-6C16-4F2A-BC52-EA0F7FD67095}) (Version: 1.3.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.27 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{904822F1-6C7D-4B91-B936-6A1C0810544C}) (Version: 7.7.34.34 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Inst5675 (Version: 8.01.27 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.27 - Softex Inc.) Hidden
Intel(R) Chipset Device Software (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.27.1012 - Intel Corporation)
Intel(R) PRO/Wireless Driver (HKLM\...\{d3f2f385-12f2-479c-92e2-e6f6b5e95b76}) (Version: 17.12.0000.1757 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) 4.0 (HKLM-x32\...\{C9324B6F-FC2B-4CA0-8C42-793D7099BDA1}) (Version: 17.0.1422.02 - Intel Corporation)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Legend of Grimrock (HKLM-x32\...\Steam App 207170) (Version: - Almost Human Games)
Legend of Grimrock 2 (HKLM-x32\...\Steam App 251730) (Version: - Almost Human Games)
METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM-x32\...\Steam App 287700) (Version: - Konami Digital Entertainment)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.4745.1002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Might & Magic X - Legacy (HKLM-x32\...\Steam App 238750) (Version: - Ubisoft)
Mozilla Firefox 41.0 (x64 de) (HKLM\...\Mozilla Firefox 41.0 (x64 de)) (Version: 41.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.0.5721 - Mozilla)
Neverwinter (HKLM-x32\...\Steam App 109600) (Version: - Cryptic Studios)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.14.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.14.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4745.1002 - Microsoft Corporation) Hidden
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version: - Robot Entertainment)
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
Quake (HKLM-x32\...\Steam App 2310) (Version: - id Software)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.30175 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
RGSS-RTP Standard (HKLM-x32\...\RGSS-RTP Standard_is1) (Version: 1.04 - Enterbrain)
Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam)
RPG Maker VX Ace (HKLM-x32\...\Steam App 220700) (Version: - KADOKAWA)
RPG Maker XP (HKLM-x32\...\RPG Maker XP_is1) (Version: 1.04 - Enterbrain)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.14.5 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Steam App 232890) (Version: - FireFly Studios)
Stronghold Crusader HD (HKLM-x32\...\Steam App 40970) (Version: - FireFly Studios)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
The Secret World (HKLM-x32\...\The Secret World_is1) (Version: 1.0.0 - Funcom)
Unepic (HKLM-x32\...\Steam App 233980) (Version: - Francisco Téllez de Meneses)
Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)
War for the Overworld (HKLM-x32\...\Steam App 230190) (Version: - Subterranean Games)
WhoCrashed 5.51 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
XCOM: Enemy Unknown (HKLM-x32\...\Steam App 200510) (Version: - Firaxis Games)
Ziggurat (HKLM-x32\...\Steam App 308420) (Version: - Milkstone Studios)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-595547741-316607751-116945185-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Benito\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncApi64.dll (Microsoft Corporation)
==================== Wiederherstellungspunkte =========================
17-08-2015 08:18:29 Windows Modules Installer
19-08-2015 23:03:00 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
26-08-2015 02:25:54 SPTD setup V1.60
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0B314BD7-BC1D-4AE0-8BDD-2F36BF00E0BF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {0C614D4E-A12B-4DB7-97E4-E03EA6ACA21F} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {13C36E56-4033-4AB5-AC13-08AC439A5EB6} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation)
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {231AABF3-433A-49BD-8305-1EE63576840F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-08-22] (Hewlett-Packard Company)
Task: {3098B956-1033-49C0-855B-729822379E76} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {36970364-BB4B-43C7-9547-9C6331DC05BA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {43A10B80-701A-4050-99C8-9391E8587A7B} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2014-09-27] (Hewlett-Packard)
Task: {4E71852A-EC1F-4A63-9A6C-9F3904448DB0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {56973D6F-8BF7-487B-8992-4AD7D20DE943} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-07-14] (Microsoft Corporation)
Task: {60CCA967-4749-4E27-8C52-13CEA55A41E8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {60F75256-D02D-4AFF-ACF4-E1B3F4886501} - System32\Tasks\HPCeeScheduleForBenito => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {68F0DD54-23E2-485A-B1D7-35B0DE8F6865} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2014-09-27] (Hewlett-Packard)
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {78B77FA3-9D97-441D-97B6-68CEA40B4F74} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe generaltel.dll,RunTelemetry -maintenance
Task: {81B99B10-6D31-4B50-9B91-173CB125BD8E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-10] (Microsoft Corporation)
Task: {90EC38AE-7FBF-45DC-98CE-DF6B0728122A} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {94BFE1B1-0A65-4374-8A09-9CA319C35793} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {9E66B898-5154-4A5B-8B8A-83741AC74946} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2014-07-24] (CyberLink Corp.)
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {AE5273ED-4150-4612-90C3-61E757700581} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2014-09-27] (Hewlett-Packard)
Task: {BFA0AD0F-06AD-4D5F-ACF6-2C76669BD910} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-12] (Microsoft Corporation)
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {D002500B-75D6-442B-A124-07BC9E9E27F5} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {D24F1646-17ED-4765-9501-3DE61822811B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-08-22] (Hewlett-Packard Company)
Task: {D810441B-D8C2-4138-8B41-C7B3F12EB10C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {E71C76D0-24E1-45A5-BB45-D79253E71E43} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {EAB4A665-4FE2-4F5A-A185-2487CCD5951B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {FD071F5A-9883-4A28-A3E2-30AB7B308E53} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForBenito.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-08-10 09:09 - 2015-08-10 09:09 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-10 08:12 - 2015-08-25 17:57 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-09-27 15:40 - 2014-09-27 15:40 - 02150400 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2014-09-27 15:39 - 2014-09-27 15:39 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2014-09-27 15:39 - 2014-09-27 15:39 - 00035840 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2014-09-27 15:39 - 2014-09-27 15:39 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2014-09-27 15:48 - 2014-09-27 15:48 - 00420432 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2014-09-27 15:48 - 2014-09-27 15:48 - 00746064 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-08-10 09:09 - 2015-08-10 09:09 - 00403968 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-05-23 17:44 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2015-08-11 09:06 - 2015-07-30 08:05 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-11 09:06 - 2015-07-30 08:05 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-12 07:48 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:45 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-12 07:48 - 2015-08-03 03:08 - 01806848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-12 07:48 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-09-27 15:42 - 2014-09-27 15:42 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2015-06-24 04:33 - 2015-06-18 12:22 - 00062464 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
2015-05-20 23:50 - 2015-08-27 02:37 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-08-13 12:54 - 2014-08-13 12:54 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-05-24 05:09 - 2015-05-24 05:09 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll
2015-07-23 13:00 - 2015-07-03 18:12 - 00778240 _____ () E:\Steam\SDL2.dll
2015-07-23 13:00 - 2015-07-03 18:12 - 04962816 _____ () E:\Steam\v8.dll
2015-08-22 13:07 - 2015-08-19 22:39 - 02413248 _____ () E:\Steam\video.dll
2015-05-20 22:48 - 2014-12-01 23:31 - 02396672 _____ () E:\Steam\libavcodec-56.dll
2015-05-20 22:48 - 2014-12-01 23:31 - 00479744 _____ () E:\Steam\libavformat-56.dll
2015-05-20 22:48 - 2014-12-01 23:31 - 00332800 _____ () E:\Steam\libavresample-2.dll
2015-05-20 22:48 - 2014-12-01 23:31 - 00442880 _____ () E:\Steam\libavutil-54.dll
2015-05-20 22:48 - 2014-12-01 23:31 - 00485888 _____ () E:\Steam\libswscale-3.dll
2015-07-23 13:00 - 2015-07-03 18:12 - 01556992 _____ () E:\Steam\icui18n.dll
2015-07-23 13:00 - 2015-07-03 18:12 - 01187840 _____ () E:\Steam\icuuc.dll
2015-08-22 13:07 - 2015-08-19 22:39 - 00704192 _____ () E:\Steam\bin\chromehtml.DLL
2015-08-16 01:37 - 2015-07-27 03:13 - 00171008 _____ () E:\Steam\bin\openvr_api.dll
2015-07-23 13:00 - 2015-07-03 18:12 - 39553928 _____ () E:\Steam\bin\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-595547741-316607751-116945185-1001\Control Panel\Desktop\\Wallpaper -> E:\Data\Avatar\pokemon mix-15868-1920x1200 - Kopie - Kopie.jpg
DNS Servers: 10.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{2D4DC339-E2BC-40E7-84FB-4C424667D96C}E:\batman\batman arkham asylum - game of the year edition\binaries\shippingpc-bmgame.exe] => (Block) E:\batman\batman arkham asylum - game of the year edition\binaries\shippingpc-bmgame.exe
FirewallRules: [TCP Query User{33A350ED-37E3-4B7D-A4DF-3934CC9DAB81}E:\batman\batman arkham asylum - game of the year edition\binaries\shippingpc-bmgame.exe] => (Block) E:\batman\batman arkham asylum - game of the year edition\binaries\shippingpc-bmgame.exe
FirewallRules: [{29AAB74C-E099-48EA-B780-11D3FE524216}] => (Allow) E:\Steam\steamapps\common\Might & Magic X - Legacy\Might and Magic X Legacy.exe
FirewallRules: [{F2320BD3-36A8-4939-8427-E2DA02BF50E7}] => (Allow) E:\Steam\steamapps\common\Might & Magic X - Legacy\Might and Magic X Legacy.exe
FirewallRules: [{04D32764-83E9-454A-B2C0-DFEB61D39019}] => (Allow) E:\Steam\steamapps\common\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{212FA265-1EB3-4864-9F32-861549489579}] => (Allow) E:\Steam\steamapps\common\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{1CBEF4EF-3A1F-4B23-AE19-1A18BADBFC09}] => (Allow) E:\Final Fantasy 14\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{8F87DF91-AF6E-4A2B-BEE3-C01A4B38AB4C}] => (Allow) E:\Final Fantasy 14\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe
FirewallRules: [{98DEE684-10C5-4498-A0E5-1FF63F7B1C4D}] => (Allow) E:\Final Fantasy 14\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{24D216B0-EC28-4566-9453-B4CC4458CC3D}] => (Allow) E:\Final Fantasy 14\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe
FirewallRules: [{A5E33EA3-387A-4ED6-929F-FAAAE172F070}] => (Allow) E:\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{4D611C5A-71C0-43DA-AE50-5ECD8188AD3E}] => (Allow) E:\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{2FACD01B-297B-49AA-84B3-E34443022784}] => (Allow) E:\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{4D9CD3B8-1063-4688-A4ED-4F490608593C}] => (Allow) E:\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe
FirewallRules: [{5FA293A3-F169-44D7-80F8-F998FC1ADDCC}] => (Allow) E:\Steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{F16AF650-63DA-40E6-9B8C-10890064367C}] => (Allow) E:\Steam\steamapps\common\Fallout 3 goty\FalloutLauncher.exe
FirewallRules: [{2B97C8AB-6E99-4F2C-850F-04F550CD1FB9}] => (Allow) E:\Steam\steamapps\common\Unepic\unepic.exe
FirewallRules: [{54D84EE5-6447-4589-8C74-05CA2B25FC4D}] => (Allow) E:\Steam\steamapps\common\Unepic\unepic.exe
FirewallRules: [UDP Query User{FD822352-90FB-40A8-B960-16E877A35C10}E:\steam\steamapps\common\fallout tactics\bos_hr.exe] => (Block) E:\steam\steamapps\common\fallout tactics\bos_hr.exe
FirewallRules: [TCP Query User{FBFBB924-9DB0-4C7F-9C5D-ED80C63BC635}E:\steam\steamapps\common\fallout tactics\bos_hr.exe] => (Block) E:\steam\steamapps\common\fallout tactics\bos_hr.exe
FirewallRules: [{56740FA9-B88E-4485-A813-E78EF0638DFB}] => (Allow) E:\Steam\steamapps\common\Fallout Tactics\TacticsLauncher.exe
FirewallRules: [{091F3199-C571-4B20-8048-0857502029D4}] => (Allow) E:\Steam\steamapps\common\Fallout Tactics\TacticsLauncher.exe
FirewallRules: [{A38F937E-1506-463D-BD12-031DD29C3E2A}] => (Allow) E:\Steam\steamapps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{F3327F5F-A9D3-4E96-8241-7505A586B721}] => (Allow) E:\Steam\steamapps\common\Ziggurat\Ziggurat.exe
FirewallRules: [{5D2AFF78-09D2-4484-8E8A-FF534B148D2B}] => (Allow) E:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{0E5884BE-0C72-43F0-B0C8-B8BE9865B586}] => (Allow) E:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{E49925F7-C552-4BEC-83CA-7241E5A1CD35}] => (Allow) E:\Steam\steamapps\common\RPGVXAce\RPGVXAce.exe
FirewallRules: [{4C031FA4-1111-4F11-B326-5EE07551B42F}] => (Allow) E:\Steam\steamapps\common\RPGVXAce\RPGVXAce.exe
FirewallRules: [UDP Query User{F520FA83-D8E5-45A4-B4AF-F695FBECBD35}C:\users\benito\appdata\local\temp\i1432911875\windows\resource\jre\bin\javaw.exe] => (Allow) C:\users\benito\appdata\local\temp\i1432911875\windows\resource\jre\bin\javaw.exe
FirewallRules: [TCP Query User{0798783F-E252-4B6B-B8FC-C9BDAF225F7B}C:\users\benito\appdata\local\temp\i1432911875\windows\resource\jre\bin\javaw.exe] => (Allow) C:\users\benito\appdata\local\temp\i1432911875\windows\resource\jre\bin\javaw.exe
FirewallRules: [{C2FA7158-B14B-48BF-A214-57FC9C6E03E6}] => (Allow) E:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{808B4189-6E2F-4876-BF9E-B922D60B7D59}] => (Allow) E:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [UDP Query User{1817CB5A-1EEE-41DE-8F02-AF33FEC1221D}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{77DBC9AA-E6DA-470C-9A1D-1EAE765D1A62}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{C4B2BDF4-841F-4D6E-9209-BD7664C7908F}E:\download\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) E:\download\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{FBA6C360-1159-41A1-BAB3-025D646A6E60}E:\download\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) E:\download\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{E891AE93-DEFD-42AE-860E-C48AAE1C761B}] => (Allow) E:\Steam\steamapps\common\Legend of Grimrock 2\grimrock2.exe
FirewallRules: [{7BDF4C89-285E-4119-BC3F-F141DBEF2783}] => (Allow) E:\Steam\steamapps\common\Legend of Grimrock 2\grimrock2.exe
FirewallRules: [{1BC64C61-8835-45B8-88AD-3D78F68E332D}] => (Allow) E:\Steam\steamapps\common\Legend of Grimrock\grimrock.exe
FirewallRules: [{93A15B26-D01F-4620-9B6B-8EC2F5B86ACE}] => (Allow) E:\Steam\steamapps\common\Legend of Grimrock\grimrock.exe
FirewallRules: [{8988F2DF-CACA-41F4-B830-913F1B53AD93}] => (Allow) E:\Steam\steamapps\common\DefendersQuest\DefendersQuest.exe
FirewallRules: [{E8D4E717-4CCA-46DE-ABA6-F9BBF63954C3}] => (Allow) E:\Steam\steamapps\common\DefendersQuest\DefendersQuest.exe
FirewallRules: [{18361D08-AC4C-4F7E-9C90-B5CCE9A4D9CB}] => (Allow) E:\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{B892E09D-3D64-4E38-99F4-BFF932C6C3CE}] => (Allow) E:\Steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{23E0115A-DEF6-4705-A0B7-D284A45A1879}] => (Allow) E:\Steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
FirewallRules: [{841D9F12-577A-49C7-8D6F-689CC586EBBC}] => (Allow) E:\Steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
FirewallRules: [UDP Query User{2DB3E73E-5629-4CEE-A623-C65D2B595BC2}E:\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) E:\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [TCP Query User{C1C1CDBD-3638-414D-B98C-4DF1752A97D1}E:\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) E:\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{4561CCAD-6CA5-4FEB-8F8B-2FAB8D316DD1}] => (Allow) E:\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{F3D58327-C220-4EB0-935B-B2DCE2C01E38}] => (Allow) E:\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [UDP Query User{4748DE0E-4FC4-481C-B8EC-57A0E47210E6}E:\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) E:\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [TCP Query User{302FA840-E5DA-485F-897D-3FB046B8A8EE}E:\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe] => (Allow) E:\steam\steamapps\common\xcom-enemy-unknown\xew\binaries\win32\xcomew.exe
FirewallRules: [{0273DB26-7C1B-4D46-B799-29518246FD8A}] => (Allow) E:\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{631AAC33-4426-4BAE-8DD8-DE9B911E48C3}] => (Allow) E:\Steam\steamapps\common\XCom-Enemy-Unknown\Binaries\Win32\XComGame.exe
FirewallRules: [{8E673D11-F965-48E6-BECE-540D14992876}] => (Allow) E:\Steam\steamapps\common\FINAL FANTASY VIII\FF8_Launcher.exe
FirewallRules: [{CEE6D4F4-7467-4FCF-BA66-CC516E66079B}] => (Allow) E:\Steam\steamapps\common\FINAL FANTASY VIII\FF8_Launcher.exe
FirewallRules: [{4F02A7D4-DC15-4D4A-BE2B-C27D6798257D}] => (Allow) E:\Steam\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe
FirewallRules: [{258CC56C-343E-45EC-9F4F-9BC2C9D53FE4}] => (Allow) E:\Steam\steamapps\common\FINAL FANTASY VII\FF7_Launcher.exe
FirewallRules: [{15FEF7DB-F982-4BAE-BE41-17128A0FCC9F}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{8C56C76F-D4ED-4AA0-9BF8-CD4938700F12}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{0F7CAF10-201B-4239-AA3A-A4D343E43EBF}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{1F124193-9A77-49CD-9886-1E0232814D8A}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{1F2F90B3-D844-4977-8CC3-FD69B4548CF2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{769240B7-7BB8-488B-9C5B-C1F4BC27070C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{35562515-16FF-483E-84B0-21FB568DF0D0}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{90AB6E06-4A20-44DA-8DDA-EE4E7751696C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{1FF9B9D4-3E8B-4E88-9F32-9993472448F4}] => (Allow) C:\Program Files (x86)\Funcom\The Secret World\ClientPatcher.exe
FirewallRules: [{982F5AC7-5DA8-445E-B45F-6481E275BD12}] => (Allow) C:\Program Files (x86)\Funcom\The Secret World\ClientPatcher.exe
FirewallRules: [{4E5DB2DE-60D2-47FC-BDA2-D973B100DB64}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe
FirewallRules: [{4D83D4F8-7B6B-44A1-B99D-E22518F4EBE2}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe
FirewallRules: [{D497B0B8-952D-4BED-9EDB-E8D82E640657}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{11FC8925-48C4-4D6D-B0DA-78B427B54A9B}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{CB338EE5-3A5F-4C96-85A0-BD5711E2802E}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{EFD42711-AF39-4C15-9970-5D34611FAD38}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{9EEB8B15-1782-478E-97D8-13FEDCCC1AC6}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{B3A98092-3873-432B-9BD2-699AC75F6068}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{37345841-1FB1-4ADD-8EA4-0ED1FA663E4B}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{87C3D5D6-897A-46DA-B279-EBCF85DBB350}] => (Allow) c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{24EED9B1-8851-4C5D-B1B6-54D5E2A8F88C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E779B8F9-1C19-4BFE-BA60-D5190AEE3EF2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{10CA827D-CEFF-4861-84A9-BA6F0CBC4A28}] => (Allow) E:\Steam\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [{91A85C6A-FC59-4425-BF93-82DB4158F868}] => (Allow) E:\Steam\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [TCP Query User{0F1DD644-763D-435C-9B7B-3CA9EC4203E3}E:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) E:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [UDP Query User{3CB7C4FB-471C-4DED-9A73-CEBBCD48B50E}E:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) E:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [{D82B0227-B4FA-4EF5-BF0C-D5C79329E42D}] => (Allow) E:\Steam\steamapps\common\War For The Overworld\WFTO.exe
FirewallRules: [{E337952A-73FE-46E2-9E07-CA0B15DE6B8E}] => (Allow) E:\Steam\steamapps\common\War For The Overworld\WFTO.exe
FirewallRules: [TCP Query User{949B1545-192F-4509-B008-102CF46B8313}E:\steam\steamapps\common\war for the overworld\wftogame.exe] => (Block) E:\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [UDP Query User{89E2C0B3-4883-4D6F-9F32-F5A2007FEF5B}E:\steam\steamapps\common\war for the overworld\wftogame.exe] => (Block) E:\steam\steamapps\common\war for the overworld\wftogame.exe
FirewallRules: [{A0E03EC8-EADD-4E15-9016-01F1F509CDB9}] => (Allow) E:\Steam\steamapps\common\Final Doom\base\dosbox.exe
FirewallRules: [{550EEC96-E3F5-400D-91EE-612BB8523703}] => (Allow) E:\Steam\steamapps\common\Final Doom\base\dosbox.exe
FirewallRules: [{CA595627-3395-4E90-AE75-BE714897943A}] => (Allow) E:\Steam\steamapps\common\Quake\Winquake.exe
FirewallRules: [{38BE1F66-D763-4C45-84E7-4B741B94CCD1}] => (Allow) E:\Steam\steamapps\common\Quake\Winquake.exe
FirewallRules: [{2EDCDA6C-385B-436E-A77A-7D7DDD180594}] => (Allow) E:\Steam\steamapps\common\Quake\qwcl.exe
FirewallRules: [{F897696F-26C8-4714-82C2-CD8C28649B59}] => (Allow) E:\Steam\steamapps\common\Quake\qwcl.exe
FirewallRules: [{F5A368E9-5412-4BF8-B4FF-BE3797847E6D}] => (Allow) E:\Steam\steamapps\common\Quake\Glquake.exe
FirewallRules: [{C6712129-C3AA-4AD3-8217-F21D4E9F919E}] => (Allow) E:\Steam\steamapps\common\Quake\Glquake.exe
FirewallRules: [{77D9B747-FAC0-4167-A5D7-6227201B0737}] => (Allow) E:\Steam\steamapps\common\Quake\glqwcl.exe
FirewallRules: [{CB6F16BF-1FD7-4C73-9D66-BBA0E71CF8D5}] => (Allow) E:\Steam\steamapps\common\Quake\glqwcl.exe
FirewallRules: [{A33AA2D4-E6EF-4AB2-9405-04DB8B575B56}] => (Allow) E:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{ECEDE053-D474-4314-8A1F-CF7C98A7C637}] => (Allow) E:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
FirewallRules: [{E46EEB8F-2CF4-4D55-BD3B-7161D8B43261}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{99026CD8-2624-4A1F-9B6A-5F8822FEC884}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{7404C3DC-27B1-41AD-9D38-9C5A9E974048}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{C08D5601-887C-4A1A-8F36-C0618151A874}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C1F3F46A-0C4D-4A70-9042-644DCAFB896D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/03/2015 04:28:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OHub.exe, Version: 16.0.6121.2376, Zeitstempel: 0x55d7a527
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16430, Zeitstempel: 0x55c59f92
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000ea28c
ID des fehlerhaften Prozesses: 0xf10
Startzeit der fehlerhaften Anwendung: 0xOHub.exe0
Pfad der fehlerhaften Anwendung: OHub.exe1
Pfad des fehlerhaften Moduls: OHub.exe2
Berichtskennung: OHub.exe3
Vollständiger Name des fehlerhaften Pakets: OHub.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: OHub.exe5
Error: (09/03/2015 04:28:52 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error: (09/03/2015 04:28:52 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (09/03/2015 04:28:52 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (09/03/2015 04:28:52 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (09/03/2015 04:20:18 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Ayren)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (09/03/2015 04:18:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Ayren)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (09/03/2015 04:14:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OHub.exe, Version: 16.0.6121.2376, Zeitstempel: 0x55d7a527
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16430, Zeitstempel: 0x55c59f92
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000ea28c
ID des fehlerhaften Prozesses: 0x408
Startzeit der fehlerhaften Anwendung: 0xOHub.exe0
Pfad der fehlerhaften Anwendung: OHub.exe1
Pfad des fehlerhaften Moduls: OHub.exe2
Berichtskennung: OHub.exe3
Vollständiger Name des fehlerhaften Pakets: OHub.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: OHub.exe5
Error: (09/03/2015 04:06:51 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error: (09/03/2015 04:06:51 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Systemfehler:
=============
Error: (09/03/2015 04:40:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/03/2015 04:24:24 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BFE18E9C-6D87-4450-B37C-E02F0B373803}
Error: (09/03/2015 04:20:25 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BFE18E9C-6D87-4450-B37C-E02F0B373803}
Error: (09/03/2015 04:20:18 PM) (Source: DCOM) (EventID: 10010) (User: Ayren)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
Error: (09/03/2015 04:18:47 PM) (Source: DCOM) (EventID: 10010) (User: Ayren)
Description: CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca
Error: (09/03/2015 04:18:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/03/2015 04:04:20 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BFE18E9C-6D87-4450-B37C-E02F0B373803}
Error: (09/03/2015 04:02:20 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {BFE18E9C-6D87-4450-B37C-E02F0B373803}
Error: (09/03/2015 04:00:09 PM) (Source: DCOM) (EventID: 10010) (User: Ayren)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca
Error: (09/03/2015 03:59:12 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 03.09.2015 um 14:47:45 unerwartet heruntergefahren.
Microsoft Office:
=========================
Error: (09/03/2015 04:28:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: OHub.exe16.0.6121.237655d7a527ntdll.dll10.0.10240.1643055c59f92c000037400000000000ea28cf1001d0e654ddfbaea4C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6121.23761.0_x64__8wekyb3d8bbwe\OHub.exeC:\WINDOWS\SYSTEM32\ntdll.dllae5cdbf2-894a-4ff6-925e-0394769c649eMicrosoft.MicrosoftOfficeHub_17.6121.23761.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub
Error: (09/03/2015 04:28:52 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F2030000E5050000
Error: (09/03/2015 04:28:52 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance163707000000000000000000008F020000
Error: (09/03/2015 04:28:52 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance163707000000000000000000008F020000
Error: (09/03/2015 04:28:52 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance163707000000000000000000008F020000
Error: (09/03/2015 04:20:18 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Ayren)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927141
Error: (09/03/2015 04:18:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Ayren)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927141
Error: (09/03/2015 04:14:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: OHub.exe16.0.6121.237655d7a527ntdll.dll10.0.10240.1643055c59f92c000037400000000000ea28c40801d0e652e884aa6aC:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.6121.23761.0_x64__8wekyb3d8bbwe\OHub.exeC:\WINDOWS\SYSTEM32\ntdll.dll23466180-ae10-4b01-9440-793c8db1746bMicrosoft.MicrosoftOfficeHub_17.6121.23761.0_x64__8wekyb3d8bbweMicrosoft.MicrosoftOfficeHub
Error: (09/03/2015 04:06:51 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F2030000E5050000
Error: (09/03/2015 04:06:51 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Performance163707000000000000000000008F020000
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Prozentuale Nutzung des RAM: 56%
Installierter physikalischer RAM: 8147.91 MB
Verfügbarer physikalischer RAM: 3582.31 MB
Summe virtueller Speicher: 10773.06 MB
Verfügbarer virtueller Speicher: 2220.25 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:220.04 GB) (Free:102.16 GB) NTFS
Drive d: (Recovery Image) (Fixed) (Total:16.52 GB) (Free:2.12 GB) NTFS ==>[System mit Startkomponenten (eingeholt von lesen Laufwerk)]
Drive e: (DATADRIVE1) (Fixed) (Total:931.39 GB) (Free:672.46 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 1A06AA1F)
Partition: GPT.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: E5F7704A)
Partition: GPT.
==================== Ende von Addition.txt ============================
Geändert von Ayren (03.09.2015 um 16:29 Uhr) |
|
03.09.2015, 16:29
| #7 |
| /// Malwareteam | Pc mit Windows 10 startet nach 5-25 min neu Bevor wir weiter machen, lade mal bitte das Intel® Processor Diagnostic Tool und führe eine Analyse aus - bitte poste das Ergebnis hier
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
03.09.2015, 16:47
| #8 |
| | Pc mit Windows 10 startet nach 5-25 min neuCode:
ATTFilter ---------------------------
--- Testing Processor 1 ---
---------------------------
--- IPDT64 - rev 2.20.0.0.W.MP ---
--- Start Time: 09/03/2015 17:40:49---
--- Skipping Config ---
--- Reading CPU Manufacturer ---
Expected --> GenuineIntel
Detected --> GenuineIntel
Found --- Genuine Intel Processor ---
--- Temperature Test ---
Temperature Test Passed!!!
Temperature = 59 degrees C below maximum.
--- Reading Brand String ---
Detected Brand String:
Intel Core i7-4790 3.60GHz
Brand String Test Passed!!!
--- Reading CPU Frequency ---
Expected CPU Frequency is --> 3.60
Detected CPU Frequency is --> 3.78708
CPU Frequency Test Passed!!!
Expected frequency - The highest frequency at which the tested processor was manufactured to operate
Detected frequency - The frequency at which the tested processor is currently operating
Power management modes can create marginally higher or lower detected frequency
than expected frequency. Small variations in clock frequencies are common.
--- FSB NOT Supported on this Processor ---
--- Running Base Clock test ---
Detected Base Clock --> 102
Base Clock test Pass ---
..QPI rate Test not supported..
..Skipping QPI rate Test..
Skipping QPI rate Test
--- Running Floating Point test ---
Million Floating Points per Second, MFLOPS --> 475.2
Floating Point Test Pass ---
--- Running Prime Number Generation Test ---
Operation Per Second--> 3.3229e+006
Prime Number Generation Test Pass ---
--- Reading Cache Size ---
- Detected L1 Data Cache Size --> 4 x 32
- Detected L1 Inst Cache Size --> 4 x 32
- Detected L2 Cache Size --> 1024
- Detected L3 Cache Size --> 8192
Cache Size Test Passed!!!
--- Determining MMX - SSE capabilities ---
--- CPU FEATURES DETECTION FOR ---
--- MMX SSE ---
MMX - MMX Supported --> Yes
SSE - SSE Supported --> Yes
SSE2 - SSE2 Supported --> Yes
SSE3 - SSE3 Supported --> Yes
SSSE3 - SSSE3 Supported --> Yes
SSE4.1 - SSE4.1 Supported --> Yes
SSE4.2 - SSE4.2 Supported --> Yes
--- MMX SSE - capabilities check complete ---
MMX Test Result --- PASS
SSE Test Result --- PASS
SSE2 Test Result --- PASS
SSE3 Test Result --- PASS
SSSE3 Test Result --- PASS
SSE4.1 Test Result --- PASS
SSE4.2 Test Result --- PASS
MMX SSE Testing Passed !!
--- Determining AVX AES PCLMULQDQ capabilities ---
--- CPU FEATURES DETECTION FOR ---
--- AVX/AES/PCLMULQDQ ---
AVX - Advanced Vector Extensions Supported --> Yes
AVX OS Support - AVX Operating System Supported --> Yes
AES - Advanced Encryption Standard Supported --> Yes
PCLMULQDQ - Polys Carry-Less Multiply Supported --> Yes
--- AVX AES PCLMULQDQ capabilities check complete ---
AVX Compare Test Result --- PASS
AES Test Result --- PASS
PCLMULQDQ Test Result --- PASS
AVX AES PCLMULQDQ Testing Passed !!
--- Reading Memory Size ---
Detected Memory Size is --> 8.00GB
--- Integrated Memory Controller Stress Test ---
--- Integrated Memory Controller Stress Test Pass!!! ---
Integrated Memory Controller Test Pass!!!
Chipset : Intel� 9 Series Chipset - Z97
Chipset Stepping : A0
2 device connected to PCI Express Port 0
1 : NVIDIA GeForce GTX 980
2 : High Definition Audio-Controller
No device connected to PCI Express Port 1
1 device connected to PCI Express Port 3
1 : Realtek PCIe GBE Family Controller
1 device connected to PCI Express Port 4
1 : Intel(R) Dual Band Wireless-AC 7260
No device connected to PCI Express Port 7
3 device connected to SATA Controller 1
1 : hp CDDVDW SH-216DB
2 : SAMSUNG MZ7TE256HMHP-000H1
3 : ST1000DM003-1ER162
5USB devices detected
1 : Realtek USB 2.0 Card Reader
2 : Intel(R) Wireless Bluetooth(R)
3 : Xbox 360 Wireless Receiver f�r Windows
4 : USB-Verbundger�t
5 : USB-Verbundger�t
1 device connected to Intel High Definition Audio Controller
1 : Realtek High Definition Audio
--- Platform Controller Hub Test Completed!!! ---
..
..Query 2..
..
--- Querying for Intel(R) Integrated Graphics Device (IGD) ---
..Did not detect Intel(R) Integrated Graphics Device (IGD).
..This could be that the test platform is using a discrete graphics card.
..To test IGD, verify that there is an onboard video connector,
..shutdown the test platform, remove the graphics card, and
..move video cable from graphics card to onboard video connector
..Skipping Intel(R) Integrated Graphics Device Presence Test..
..
--- CPU Load ---
--- Load Level = 8
CPU Load Passed!!!
--- Temperature Test ---
Temperature Test Passed!!!
Temperature = 41 degrees C below maximum.
--- Test End Time: 09/03/2015 17:44:49---
System Information
------------------
Processor Name: Intel(R) Core(TM) i7-4790 CPU @ 3.60GHz
Processor Information: Intel64 Family 6 Model 60 Stepping 3
Number of Physical Cores: 4
Number of Logical Cores: 8
Installed System Memory: 8 GB
Operating System: Microsoft Windows 10 Home 64-Bit
Graphics Information: NVIDIA GeForce GTX 980
System Product: 2B36
System BIOS: 80.09
PASS
|
|
03.09.2015, 16:51
| #9 |
| /// Malwareteam | Pc mit Windows 10 startet nach 5-25 min neu ja passt schon, also der Test ist passed Wenn die Hardware bei dir soweit passt, mach mal bitte eine Systemwiederherstellung:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... Geändert von burningice (03.09.2015 um 17:01 Uhr) |
|
03.09.2015, 17:04
| #10 |
| | Pc mit Windows 10 startet nach 5-25 min neu [gelöst] Meinst du das? [IMG]  [/IMG] |
|
03.09.2015, 17:07
| #11 |
| /// Malwareteam | Pc mit Windows 10 startet nach 5-25 min neu [gelöst] ja das meinte ich, habe aber die Anweisung geändert, probiere mal eine Systemwiederherstellung =)
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
03.09.2015, 17:17
| #12 |
| | Pc mit Windows 10 startet nach 5-25 min neu [gelöst] Ich habe nur diese Daten, was muss ich machen ? [IMG]  [/IMG] |
|
03.09.2015, 17:24
| #13 |
| /// Malwareteam | Pc mit Windows 10 startet nach 5-25 min neu [gelöst] am 26. hattest du auch noch keine Probleme oder? Dann nehm den
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
03.09.2015, 17:32
| #14 |
| | Pc mit Windows 10 startet nach 5-25 min neu [gelöst] Ok hab ich gemacht. |
|
03.09.2015, 18:22
| #15 |
| /// Malwareteam | Pc mit Windows 10 startet nach 5-25 min neu [gelöst] und lebt das System? War die Wiederherstellung erfolgreich?
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
|
| Themen zu Pc mit Windows 10 startet nach 5-25 min neu |
| bild, blue screen, brand, detected, fehler, file, forum, friert, google, help, ide, musik, neu, neustart, ntoskrnl.exe, opera, ram, software, spiele, startet, system, system32, updates, windows, windows update |
Pc mit Windows 10 startet nach 5-25 min neu
Linear-Darstellung
